redline | 456b95515f3cefa4165da4efbeee1ba67bbf42fc1572e33bd84e476b64f5815b | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

4448-218-0...ry.exe

windows7-x64

4448-218-0...ry.exe

windows10-2004-x64

Sharing

General

Target

4448-218-0x0000000000400000-0x0000000000432000-memory.dmp
Size

200KB
Sample

221230-ct2jzsaa6v
MD5

962bbaf71de9ad5fe0d6639adac74025
SHA1

43746ec973a53ceb7a3f8f5040ac0f89d0eae7a3
SHA256

456b95515f3cefa4165da4efbeee1ba67bbf42fc1572e33bd84e476b64f5815b
SHA512

b398c9b0fc75a183a209f2de416710b5cae0548e99ee02664418dafd70ded880544eceb258c663e31408310a94c39bbb9ff7d757dab4a8363d2b120824156e60
SSDEEP

3072:XxqZWBJaHEDgXvgmTUel7FihJHxNn2pU9f2MKTV/wi4lr55R9TxlnsPsUw0jOuwg:hqZVvgazih

Score

10^/10

redline letgo

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

4448-218-0x0000000000400000-0x0000000000432000-memory.exe

Resource

win7-20221111-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

4448-218-0x0000000000400000-0x0000000000432000-memory.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

Malware Config

Extracted

Family

redline

Botnet

letgo

C2

80.66.87.13:22346

Attributes

auth_value
9a4217b7e3f4309698e5e6d932e3545e

Targets

- Target
  
  4448-218-0x0000000000400000-0x0000000000432000-memory.dmp
- Size
  
  200KB
- MD5
  
  962bbaf71de9ad5fe0d6639adac74025
- SHA1
  
  43746ec973a53ceb7a3f8f5040ac0f89d0eae7a3
- SHA256
  
  456b95515f3cefa4165da4efbeee1ba67bbf42fc1572e33bd84e476b64f5815b
- SHA512
  
  b398c9b0fc75a183a209f2de416710b5cae0548e99ee02664418dafd70ded880544eceb258c663e31408310a94c39bbb9ff7d757dab4a8363d2b120824156e60
- SSDEEP
  
  3072:XxqZWBJaHEDgXvgmTUel7FihJHxNn2pU9f2MKTV/wi4lr55R9TxlnsPsUw0jOuwg:hqZVvgazih
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.